Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/4e28c8-04f6-4f4a-b060-3f791fb3c392/1/jI4u4fhFNtNJBXfRAMyiEGdEAKc.roa
File: jI4u4fhFNtNJBXfRAMyiEGdEAKc.roa (raw, json)
Hash identifier: Vh751A7ErE4+Jr7HKUDKK8Cosj8kf/pgVLz3fX70/2w=
Subject key identifier: 8C:8E:2E:E1:F8:45:36:D3:49:05:77:D1:00:CC:A2:10:67:44:00:A7
Certificate issuer: /CN=c95b21442b99b8a6f113612fc0fb32da5f6c8813
Certificate serial: 147EA5EB
Authority key identifier: C9:5B:21:44:2B:99:B8:A6:F1:13:61:2F:C0:FB:32:DA:5F:6C:88:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yVshRCuZuKbxE2EvwPsy2l9siBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/4e28c8-04f6-4f4a-b060-3f791fb3c392/1/jI4u4fhFNtNJBXfRAMyiEGdEAKc.roa
Signing time: Sat 01 Jan 2022 00:58:03 +0000
ROA not before: Sat 01 Jan 2022 00:58:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2200
IP address blocks: 137.121.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 343844331 (0x147ea5eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c95b21442b99b8a6f113612fc0fb32da5f6c8813
Validity
Not Before: Jan 1 00:58:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c8e2ee1f84536d3490577d100cca210674400a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0c:d3:ec:58:29:81:ed:a9:c1:0c:aa:69:96:
14:44:8f:0f:33:3f:64:70:bc:2c:9f:9d:d1:ec:83:
ec:1c:6c:92:ed:23:45:98:57:19:b9:d7:93:f4:e3:
ee:74:1c:4f:02:dc:cb:23:b1:50:f0:bb:5b:11:b2:
2e:b3:7d:39:df:64:e1:34:bd:7a:82:77:e1:e7:bc:
c7:66:92:3a:13:58:b1:fe:0b:df:b6:6d:d5:13:ab:
73:e1:52:6f:0e:db:72:2e:44:bf:00:86:d8:72:a7:
b7:7e:84:97:38:3c:0b:86:08:d6:d6:22:8a:9c:09:
d4:0b:7a:6a:2a:90:cb:c8:c4:81:8d:b1:a7:56:2f:
cf:bf:09:ab:77:06:dd:ed:ed:b2:b7:f2:86:5d:af:
4c:08:65:9c:16:96:bd:bd:90:12:8d:9b:92:d9:33:
07:13:ef:49:f4:39:50:d0:d0:10:3d:03:f1:7f:e7:
c0:c8:61:34:aa:c3:01:fc:57:53:b6:9f:8f:35:09:
56:21:c2:60:3f:1c:21:94:ef:aa:be:f8:39:bd:ff:
3e:43:03:0b:e0:cf:78:fe:79:d0:e1:53:90:37:4d:
cf:9a:44:90:ae:e1:46:6f:33:c2:70:63:98:d3:8c:
ab:c4:b6:6b:e3:80:c6:25:b6:0b:e9:4f:28:f0:11:
e3:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:8E:2E:E1:F8:45:36:D3:49:05:77:D1:00:CC:A2:10:67:44:00:A7
X509v3 Authority Key Identifier:
keyid:C9:5B:21:44:2B:99:B8:A6:F1:13:61:2F:C0:FB:32:DA:5F:6C:88:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yVshRCuZuKbxE2EvwPsy2l9siBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/4e28c8-04f6-4f4a-b060-3f791fb3c392/1/jI4u4fhFNtNJBXfRAMyiEGdEAKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/4e28c8-04f6-4f4a-b060-3f791fb3c392/1/yVshRCuZuKbxE2EvwPsy2l9siBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
137.121.0.0/16
Signature Algorithm: sha256WithRSAEncryption
07:0b:ec:e2:b1:2b:bc:26:05:6d:cc:42:c2:14:61:db:a8:f5:
d7:af:af:d7:78:2c:fa:47:5f:39:d7:36:8d:e9:0b:e3:64:d8:
08:e0:81:39:b1:10:64:20:32:7a:e6:fb:a5:e7:3f:01:9b:73:
50:98:67:e0:b5:03:4d:94:5f:fe:36:9c:8c:00:9d:98:9f:b4:
f4:b9:bd:5b:a6:c7:e8:ec:45:ae:0c:0d:21:7d:d8:7d:d0:1d:
03:4a:9f:99:c1:5e:1c:fe:de:5d:17:80:5a:c4:43:8e:1a:e1:
83:31:12:9f:27:94:33:79:dc:a4:d6:9d:b9:73:8b:5e:aa:64:
47:df:3d:ff:d4:29:7e:b1:ef:16:26:9b:66:10:35:45:21:b5:
54:c9:ce:d2:99:be:ca:1c:04:3d:95:07:bc:99:19:8e:0b:13:
8b:a9:8f:ad:a6:be:28:98:67:0e:f9:54:20:67:35:db:86:a2:
04:4e:df:61:61:7e:77:5d:c4:82:06:69:83:54:1c:cd:33:84:
09:9a:08:28:5e:71:6a:0e:46:fb:a2:3e:c8:be:33:ec:70:98:
07:be:a7:12:08:fa:28:a9:59:06:d8:b1:3b:72:17:ad:8b:9e:
a5:c4:0d:b4:09:95:e5:1f:43:40:db:a0:51:c4:6d:e5:18:70:
87:4a:d4:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 03:34:23 2025 by rpki-client